Hi, thanks for the replies.
As per Chuck's request, I've lamped together the output of the suggested
commands and got the current kernel configuration and put them online for
you to take a look at and see what you think.
http://www.sisko.net/bridge/dmesg.txt
http://www.sisko.net/bridge/kernconf
> I've also had problems with the bridge running out of dynamic rules. I've
> raised them to silly figures however I'm always wary that if a machine had a
> Trojan or some other form of malware that attempted a DoS attack, the bridge
> would probably fall over after exhausting its dynamic rule coun
details, maybe as files in a directory being served by HTTP, and sending a link.
> I've put together a bridging firewall using FreeBSD 5.X. The traffic routes
> through fine and presently I'm using IPFW, default policy is set to deny,
> with certain rules/ports allowed to pass throu
Hi there. I wonder if somebody could help me with an issue I'm experiencing.
I've put together a bridging firewall using FreeBSD 5.X. The traffic routes
through fine and presently I'm using IPFW, default policy is set to deny,
with certain rules/ports allowed to pass thr
> I find no reference to MAC rules showing up in 5.2.1. Any help or advice
> would be appreciated.
That's because bridge(4) doesn't do Layer 2 filtering. Neither does ipfw (as
well it shouldn't). I don't know if there are any plans to add this
capability to FreeBSD's bridge, but I know that OpenBS
I am using this document –
HYPERLINK
"http://www.freebsd.org/doc/en_US.ISO8859-1/articles/filtering-bridges/filte
ring-bridges-contributors.html"http://www.freebsd.org/doc/en_US.ISO8859-1/ar
ticles/filtering-bridges/filtering-bridges-contributors.html
I find no reference to MAC rules showi